Symantec Privileged Access Management

 View Only
  • 1.  Tenable Nessus Custom Connector

    Broadcom Employee
    Posted Sep 24, 2019 04:26 AM
    Edited by Soon Leong Yap Sep 24, 2019 05:12 AM
      |   view attached
    The Tenable Nessus connector is a sample custom connector implemented using PAM 3.3 Target Connector Framework.  With this connector, you can view and update passwords for Tenable Nessus user accounts from CA Privileged Access Manager.

    Disclaimer
    This software is provided without warranty of any kind, including without limitation, any implied warranties of merchantability or fitness for a particular purpose. In no event will CA be liable to the end user or any third party for any loss or damage, direct or indirect, from the use of this software, including without limitation, lost profits, business interruption, goodwill, or lost data, even if CA is expressly advised of such loss or damage.

    Prerequisites
    The following conditions must be satisfied in order to use the custom connector:

    Deploy the Target Connector
    Follow these steps:
    1. On the Tomcat Custom Connector Server, copy the nessus.war file to the webapps_targetconnectors directory.

    Specify a Remote Target Server
    Follow these steps:
    1. Log in the CA Privileged Access Manager UI.
    2. In the UI, select Devices, Manage Devices.
    3. From the Devices page, select ADD.
    4. In the Add Device dialog, complete the required fields in the Basic Info tab.
    5. For the Device Type, select the Password Management checkbox. Keep the Access checkbox selected.
    6. Go to the Access Methods tab and specify an access protocol, such as SSH. The appliance uses the access method to contact the remote target server.
    7. Select SAVE AND ADD TARGET APPLICATIONS to complete the configuration.

    Add the Target Connector Application
    Follow these steps:
    1. Select or enter values for the Application Name field.
    2. In the Application Type field, select Nessus.
    3. A new tab labelled Nessus is displayed.
       
    4. On the Nessus tab, specify values for the following fields:
      - Server Port: Specify the port that the Nessus server listens on. Default: 8834.
      - Base 64 encoded x.509 Certificate: Specify the server's SSL certificate.
      - Hostname Verification: Select this box to enable hostname verification when connecting to the server.
       
    5. Select OK.

    Add the Target Account
    Follow these steps:
    1. Select Credentials, Manage Targets, Accounts.
    2. Select ADD.
    3. Complete the required fields:
      - Host Name: Enter or specify the remote target server you defined.
      - Device Name: Enter the name for the target server you added.
      - Application Name: Select the Nessus application name that you configured in the previous procedure.
      - Password: The password of the user account at the remote target server.
    4. On the Password tab, select Update both the Password Authority Server and the target system.
    5. On the Nessus tab, specify values for the following fields:
      - Master Account: Specify whether to use the existing target account or an alternative account to change the password.
    6. Select OK to save the account.

    #targetconnector​​

    Attachment(s)



  • 2.  RE: Tenable Nessus Custom Connector
    Best Answer

     
    Posted Sep 26, 2019 07:22 PM
    Thank you for sharing this with the community!

    ------------------------------
    Chris Hackett
    Community Manager, Broadcom Enterprise Software Division
    Broadcom Inc.
    ------------------------------